Rosario Gennaro and Daniele MicciancioSang Jin Lee and Eonkyung LeeSteven D. Galbraith and Florian Hess and Nigel P. SmartRonald Cramer and Victor ShoupYevgeniy Dodis and Jonathan Katz and Shouhuai Xu and Moti YungJee Hea An and Yevgeniy Dodis and Tal RabinJoan Daemen and Vincent RijmenUeli MaurerAlexander Russell and Hong WangDavid P. Woodruff and Marten van DijkJunko Nakajima and Mitsuru MatsuiJohn A. Clark and Jeremy L. JacobYoung-Ho Park and Sangtae Jeong and Jongin LimPhilippe Chose and Antoine Joux and Michel MittonMatthias KrauseJovan Dj. Golić and Vittorio Bagini and Guglielmo MorgariIvan Damgård and Maciej KoprowskiJean-Sébastien CoronHenri Gilbert and Marine MinierCraig Gentry and Mike SzydloEmmanuel Bresson and Olivier Chevassut and David PointchevalRan Canetti and Hugo KrawczykDonald BeaverAnand Desai and Alejandro Hevia and Yiqun Lisa YinJohn Black and Phillip RogawayStephen KentTal Malkin and Daniele Micciancio and Sara MinerMichel Abdalla and Jee Hea An and Mihir Bellare and Chanathip NamprempreJunji Shikata and Goichiro Hanaoka and Yuliang Zheng and Hideki ImaiAggelos Kiayias and Moti YungJeremy Horwitz and Ben LynnMatthias Fitzi and Nicolas Gisin and Ueli Maurer and Oliver von RotzYvo Desmedt and Yongge WangAnne Canteaut and Marion VideauSerge Vaudenay

Cryptanalysis I
Cryptanalysis of a Pseudorandom Generator Based on Braid Groups	p. 1
Potential Weaknesses of the Commutator Key Agreement Protocol Based on Braid Groups	p. 14
Extending the GHS Weil Descent Attack	p. 29
Public-Key Encryption
Universal Hash Proofs and a Paradigm for Adaptive Chosen Ciphertext Secure Public-Key Encryption	p. 45
Key-Insulated Public Key Cryptosystems	p. 65
On the Security of Joint Signature and Encryption	p. 83
Invited Talk
AES and the Wide Trail Design Strategy	p. 108
Information Theory & New Models
Indistinguishability of Random Systems	p. 110
How to Fool an Unbounded Adversary with a Short Key	p. 133
Cryptography in an Unbounded Computational Model	p. 149
Implementational Analysis
Performance Analysis and Parallel Implementation of Dedicated Hash Functions	p. 165
Fault Injection and a Timing Channel on an Analysis Technique	p. 181
Speeding Up Point Multiplication on Hyperelliptic Curves with Efficiently-Computable Endomorphisms	p. 197
Stream Ciphers
Fast Correlation Attacks: An Algorithmic Point of View	p. 209
BDD-Based Cryptanalysis of Keystream Generators	p. 222
Linear Cryptanalysis of Bluetooth Stream Cipher	p. 238
Digital Signatures I
Generic Lower Bounds for Root Extraction and Signature Schemes in General Groups	p. 256
Optimal Security Proofs for PSS and Other Signature Schemes	p. 272
Cryptanalysis II
Cryptanalysis of SFLASH	p. 288
Cryptanalysis of the Revised NTRU Signature Scheme	p. 299
Key Exchange
Dynamic Group Diffie-Hellman Key Exchange under Standard Assumptions	p. 321
Universally Composable Notions of Key Exchange and Secure Channels	p. 337
On Deniability in Quantum Key Exchange	p. 352
Modes of Operation
A Practice-Oriented Treatment of Pseudorandom Number Generators	p. 368
A Block-Cipher Mode of Operation for Parallelizable Message Authentication	p. 384
Invited Talk
Rethinking PKI: What's Trust Got to Do with It?	p. 398
Digital Signatures II
Efficient Generic Forward-Secure Signatures with an Unbounded Number of Time Periods	p. 400
From Identification to Signatures via the Fiat-Shamir Transform: Minimizing Assumptions for Security and Forward-Security	p. 418
Security Notions for Unconditionally Secure Signature Schemes	p. 434
Traitor Tracking & Id-Based Encryption
Traitor Tracing with Constant Transmission Rate	p. 450
Toward Hierarchical Identity-Based Encryption	p. 466
Multiparty and Multicast
Unconditional Byzantine Agreement and Multi-party Computation Secure against Dishonest Minorities from Scratch	p. 482
Perfectly Secure Message Transmission Revisited	p. 502
Symmetric Cryptology
Degree of Composition of Highly Nonlinear Functions and Applications to Higher Order Differential Cryptanalysis	p. 518
Security Flaws Induced by CBC Padding - Applications to SSL, IPSEC, WTLS	p. 534
Author Index	p. 547